$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: m+8yGuQGsg2CYT5n2Kz8x1YY3kRRi5wdpC3QX1fxGEo= Subject key identifier: C5:2A:BB:79:A1:91:1F:24:C2:22:3F:54:98:4C:1A:B3:C3:DD:E6:A7 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 342F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 342F Signing time: Sun 24 Nov 2024 14:21:50 +0000 Manifest this update: Sun 24 Nov 2024 14:21:49 +0000 Manifest next update: Sun 01 Dec 2024 14:21:49 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: +c5vHIwt0LVdBJvzIGsWjf7bKm2ItiLTgP3rXgAQwdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13359 (0x342f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Nov 24 14:21:49 2024 GMT Not After : Dec 1 14:21:49 2024 GMT Subject: CN=6743367e-3ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:1d:30:1a:71:91:42:cd:df:08:ba:5e:41: 69:ab:7b:d5:07:98:30:b7:ae:fb:f3:91:0e:7e:9a: 5c:ab:c5:49:3e:ba:c8:0c:f0:c8:f0:91:18:aa:44: df:17:ce:4a:54:0d:36:57:a2:eb:a7:b3:7c:30:bb: 1a:b6:df:c4:db:27:fe:85:94:24:12:a0:2d:05:ec: e8:ad:67:6c:4e:ff:95:86:21:f3:c2:d6:a0:f5:c6: 25:f2:d8:ba:70:d8:aa:9b:b6:17:10:4d:ad:a4:9f: 66:ca:4d:c6:f8:ed:20:36:e9:70:73:73:fc:fc:fa: f6:b8:bf:c0:24:24:05:39:c2:aa:cf:e3:89:2a:fc: d2:65:da:0c:ff:db:c3:d2:1c:f4:9b:be:75:ea:25: 9f:bd:bf:8d:ac:03:a4:a6:39:1b:bc:41:64:63:bc: ac:d7:d6:11:57:6e:bc:be:14:af:ca:81:36:e9:9b: ed:79:49:4d:45:06:e8:e7:43:a7:d6:5c:8c:bd:f5: 7c:62:8d:11:40:3e:98:96:70:43:a3:3e:7c:e6:bb: 94:2d:e5:76:c2:41:07:1d:2a:5e:18:6c:b7:1b:30: 1c:71:fa:2b:9b:10:f7:13:7d:41:d5:81:8d:ff:c8: 22:95:0a:22:25:a5:0e:ff:f4:00:65:2d:f6:2e:f5: 2d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2A:BB:79:A1:91:1F:24:C2:22:3F:54:98:4C:1A:B3:C3:DD:E6:A7 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e5:ce:ff:46:1a:43:44:90:b8:64:75:2e:c5:24:f9:79:0f: 4c:b8:5c:e0:f5:07:47:36:1f:44:80:4c:1b:e1:02:ec:99:fb: b4:a6:0d:77:97:ec:0c:b3:79:81:d7:10:48:c1:f0:99:a5:d2: 3d:5f:4a:95:d2:83:42:03:54:7b:22:e2:fa:f4:54:dd:9a:b9: 58:09:bf:89:e2:2e:98:92:6b:87:d3:8d:cc:f0:2f:3a:fa:8c: 03:8c:93:c7:ec:99:59:eb:ec:05:de:fb:2b:4f:35:e6:30:e4: 25:32:e8:cb:56:88:c8:37:ad:f3:cc:46:b4:7e:8e:89:c2:29: 23:5f:83:bc:57:30:6d:d2:57:c7:a7:dc:66:69:2b:5e:50:79: f3:08:71:ef:7e:5a:1c:c8:c9:87:77:e1:d7:82:4b:02:aa:51: 5b:28:ee:5d:64:19:f5:aa:e0:3d:57:23:97:cc:1a:15:31:a3: cd:ec:a7:5d:7a:bf:11:2b:ba:43:f0:97:06:49:30:74:c5:bc: 77:31:b2:b4:35:52:48:ad:87:93:a1:d8:aa:c9:7a:db:89:00: ff:a1:a3:87:5b:6d:11:92:b2:0f:7a:f3:f6:a9:a7:a9:da:da: 8d:ce:cd:67:ec:60:ad:74:4d:81:31:7b:31:05:76:a9:07:64: 86:38:bc:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjQxMTI0MTQyMTQ5WhcNMjQxMjAxMTQyMTQ5WjAYMRYwFAYD VQQDEw02NzQzMzY3ZS0zYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRUdMBpxkULN3wi6XkFpq3vVB5gwt67785EOfppcq8VJPrrIDPDI8JEYqkTf F85KVA02V6Lrp7N8MLsatt/E2yf+hZQkEqAtBezorWdsTv+VhiHzwtag9cYl8ti6 cNiqm7YXEE2tpJ9myk3G+O0gNulwc3P8/Pr2uL/AJCQFOcKqz+OJKvzSZdoM/9vD 0hz0m7516iWfvb+NrAOkpjkbvEFkY7ys19YRV268vhSvyoE26ZvteUlNRQbo50On 1lyMvfV8Yo0RQD6YlnBDoz585ruULeV2wkEHHSpeGGy3GzAccformxD3E31B1YGN /8gilQoiJaUO//QAZS32LvUtZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUqu3mh kR8kwiI/VJhMGrPD3eanMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL5c7/RhpDRJC4ZHUuxST5eQ9MuFzg9QdHNh9EgEwb4QLsmfu0pg13 l+wMs3mB1xBIwfCZpdI9X0qV0oNCA1R7IuL69FTdmrlYCb+J4i6YkmuH043M8C86 +owDjJPH7JlZ6+wF3vsrTzXmMOQlMujLVojIN63zzEa0fo6JwikjX4O8VzBt0lfH p9xmaSteUHnzCHHvflocyMmHd+HXgksCqlFbKO5dZBn1quA9VyOXzBoVMaPN7Kdd er8RK7pD8JcGSTB0xbx3MbK0NVJIrYeTodiqyXrbiQD/oaOHW20RkrIPevP2qaep 2tqNzs1n7GCtdE2BMXsxBXapB2SGOLzx -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:14 2024 by rpki-client on console-ams.rpki-client.org